This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa File: 234e46a7-d4c0-4498-863f-fe0ed912a21e.roa (raw, json) Hash identifier: XjlA78/zXJ9cnYTcREKGq+mRvTtEsm0Z310ab5taoJg= Subject key identifier: 8B:38:74:5C:FD:76:49:07:52:28:98:E1:54:AA:28:47:07:0B:81:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 22C54818C66E73E404A3C0AC70188171569CCFBA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa Signing time: Thu 11 Dec 2025 00:40:53 +0000 ROA not before: Thu 11 Dec 2025 00:40:53 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.235.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 03 Jan 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:c5:48:18:c6:6e:73:e4:04:a3:c0:ac:70:18:81:71:56:9c:cf:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 11 00:40:53 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=0d2ce5fbd69a4fa381f9234e8c3730ffeca8557799d8e6d78d499605707151fb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:40:c4:63:0a:d2:33:32:55:29:42:e8:82:e3: 28:a0:72:e8:ba:77:45:e0:49:86:0f:28:a2:34:29: 3d:e3:b0:3f:97:59:27:29:94:df:91:12:04:7b:c5: 77:1f:08:84:61:54:03:a6:e6:09:7b:0c:cc:24:8b: 5d:dd:bd:50:5d:06:0a:0f:e5:9e:00:b8:2b:04:86: 87:76:c1:06:3d:e4:6b:16:15:b3:b8:c1:e6:c7:60: f8:e6:96:92:be:25:2e:ca:3b:e6:e7:0a:57:58:9d: 0d:da:73:36:84:c3:78:9b:9b:fa:11:d5:55:80:f0: a5:23:23:3c:5a:df:f7:c5:2c:29:56:f4:85:cf:ef: f9:cb:ce:4f:e1:16:ad:e4:da:12:df:d6:7e:ba:10: d1:11:f6:03:02:28:ac:77:e1:86:b2:e3:db:8f:6b: ba:fb:ec:eb:8f:33:68:4a:a6:8c:b7:60:24:e7:61: 7a:8e:0c:9f:09:32:11:ad:d5:b9:3a:41:7c:b4:40: 3d:d9:b2:a9:41:a3:d6:77:8d:bb:97:91:bb:c2:8f: c8:0c:cb:5b:c4:f0:9d:e1:d1:b3:94:f7:fa:5f:34: f4:12:5f:12:85:41:37:0a:4b:a2:85:16:56:80:80: bd:43:26:31:ca:20:9a:c5:62:e8:86:0b:92:44:e9: 9a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:38:74:5C:FD:76:49:07:52:28:98:E1:54:AA:28:47:07:0B:81:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/234e46a7-d4c0-4498-863f-fe0ed912a21e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.235.0.0/18 Signature Algorithm: sha256WithRSAEncryption 7f:32:d1:e5:19:6f:cd:ed:49:28:de:a3:8d:aa:2a:0b:07:17: 92:78:c1:7d:29:59:26:e0:a5:36:a2:28:a9:35:98:5a:2b:9f: b4:0c:a6:38:c2:b5:8d:d5:e4:80:1c:9e:15:05:0a:c0:97:a7: dd:bc:66:29:6a:4c:67:9a:bc:a4:e3:c6:8a:63:08:3c:6c:c0: c3:67:2e:f1:b9:21:0f:06:a8:b2:d5:ac:4a:2c:1e:6f:60:d2: d4:e2:64:be:c6:29:a2:8b:74:55:9d:ae:98:e1:fd:53:a8:96: 1b:89:5d:a8:ff:97:d6:15:a1:f5:97:56:7d:03:72:52:1d:ca: 6f:8b:0a:7c:27:f8:71:fa:55:ba:3e:04:14:49:56:fb:8d:ab: 4b:d7:72:6f:97:8c:ab:29:a5:f9:7c:11:5c:89:7b:61:1b:a3: d1:f0:c5:ef:c8:29:c9:62:f3:33:2c:c2:cf:5f:4d:07:67:20: 6b:03:1b:2c:0b:94:2f:d7:1b:02:03:fe:cb:f1:c7:96:5b:a1: b2:3f:4d:95:e0:c3:d9:ec:2e:43:32:81:02:1b:8c:6e:c1:bd: 32:cb:58:36:94:40:89:6d:47:e5:41:f8:c2:19:35:7f:8f:7a: 78:cb:0d:40:7f:61:e7:24:54:dc:4a:59:aa:72:36:bf:4e:27: 57:aa:5d:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIsVIGMZuc+QEo8CscBiBcVacz7owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjExMDA0MDUzWhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDJjZTVmYmQ2OWE0ZmEzODFmOTIzNGU4YzM3MzBmZmVj YTg1NTc3OTlkOGU2ZDc4ZDQ5OTYwNTcwNzE1MWZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxQMRjCtIzMlUpQuiC4yigcui6d0XgSYYPKKI0KT3jsD+X WScplN+REgR7xXcfCIRhVAOm5gl7DMwki13dvVBdBgoP5Z4AuCsEhod2wQY95GsW FbO4webHYPjmlpK+JS7KO+bnCldYnQ3aczaEw3ibm/oR1VWA8KUjIzxa3/fFLClW 9IXP7/nLzk/hFq3k2hLf1n66ENER9gMCKKx34Yay49uPa7r77OuPM2hKpoy3YCTn YXqODJ8JMhGt1bk6QXy0QD3ZsqlBo9Z3jbuXkbvCj8gMy1vE8J3h0bOU9/pfNPQS XxKFQTcKS6KFFlaAgL1DJjHKIJrFYuiGC5JE6ZrhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUizh0XP12SQdSKJjhVKooRwcLgUMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzNGU0NmE3LWQ0YzAtNDQ5OC04NjNmLWZlMGVkOTEyYTIxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYo6wAwDQYJKoZIhvcNAQELBQADggEBAH8y0eUZb83tSSjeo42qKgsHF5J4 wX0pWSbgpTaiKKk1mForn7QMpjjCtY3V5IAcnhUFCsCXp928ZilqTGeavKTjxopj CDxswMNnLvG5IQ8GqLLVrEosHm9g0tTiZL7GKaKLdFWdrpjh/VOolhuJXaj/l9YV ofWXVn0DclIdym+LCnwn+HH6Vbo+BBRJVvuNq0vXcm+XjKsppfl8EVyJe2Ebo9Hw xe/IKcli8zMsws9fTQdnIGsDGywLlC/XGwID/svxx5ZbobI/TZXgw9nsLkMygQIb jG7BvTLLWDaUQIltR+VB+MIZNX+PenjLDUB/YeckVNxKWapyNr9OJ1eqXbA= -----END CERTIFICATE-----Generated at Fri Jan 2 09:34:15 2026 by rpki-client